"Have Suggestions" Vs "Ready To Be Enforced"

You are exactly right. When the configured enforcement readiness period expires for each staged entity or violation item, ASM will move the item to the Ready To Be Enforced column--as long as no violations have been triggered for the staged item. Let's use an attack signature as an example. If an attack signature has not been triggered for the duration of the enforcement readiness period (7 days for example), the rationale is that if and when it finally gets triggered it is because of a malicious request.

If ASM has detected changes in staged entity attributes, or the appearance of new entities, and/or if attack signatures have been triggered, a link to learning suggestions—actions which will result in policy modification—is provided in the Have Suggestions column.